Vulnerabilities > Qualcomm > Wcn3980 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-21455 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-33049 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-33069 Use After Free vulnerability in Qualcomm products
Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.
network
low complexity
qualcomm CWE-416
7.5
2024-10-07 CVE-2024-43047 Use After Free vulnerability in Qualcomm products
Memory corruption while maintaining memory maps of HLOS memory.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-33042 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when Alternative Frequency offset value is set to 255.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33048 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33051 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33052 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when user provides data for FM HCI command control operations.
local
low complexity
qualcomm CWE-787
7.8